GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,250
Composer 5,336
Erlang 44
GitHub Actions 43
Go 3,181
Maven 6,302
npm 5,159
NuGet 863
pip 4,474
Pub 12
RubyGems 991
Rust 1,185
Swift 51

Unreviewed advisories

All unreviewed 293,693

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

92 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Markdown parser in Zulip server before 2.0.5 used a regular expression vulnerable to... Moderate Unreviewed

CVE-2019-16215 was published May 24, 2022

A flaw was found in REXML. A remote attacker could exploit inefficient regular expression (regex)... High Unreviewed

CVE-2025-10990 was published Feb 27, 2026

Inefficient Regular Expression Complexity (CWE-1333) in the AI Inference Anonymization Engine in... Moderate Unreviewed

CVE-2026-26936 was published Feb 26, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.7.5, 18... High Unreviewed

CVE-2026-1388 was published Feb 25, 2026

Denial of service condition in M-Files Server in versions before 24.4.13592.4 and after 23.11 ... High Unreviewed

CVE-2024-4056 was published Apr 26, 2024

LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service ... High Unreviewed

CVE-2024-58340 was published Jan 13, 2026

Inefficient Regular Expression Complexity vulnerability in Wikimedia Foundation MediaWiki -... Moderate Unreviewed

CVE-2026-0668 was published Jan 7, 2026

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10... High Unreviewed

CVE-2025-62484 was published Nov 13, 2025

Zohocorp ManageEngine Exchange Reporter Plus through 5721 are vulnerable to ReDOS vulnerability... Moderate Unreviewed

CVE-2025-5342 was published Oct 30, 2025

There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed... High Unreviewed

CVE-2024-6232 was published Sep 3, 2024

There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard... High Unreviewed

CVE-2024-7592 was published Aug 19, 2024

A vulnerability in binary-husky/gpt_academic, as of commit 310122f, allows for a Regular... Moderate Unreviewed

CVE-2024-12391 was published Mar 20, 2025

A vulnerability in lunary-ai/lunary, as of commit be54057, allows users to upload and execute... High Unreviewed

CVE-2024-8764 was published Mar 20, 2025

Lunary-ai/lunary version git 105a3f6 is vulnerable to a Regular Expression Denial of Service ... High Unreviewed

CVE-2024-8789 was published Mar 20, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary... High Unreviewed

CVE-2024-8763 was published Mar 20, 2025

A vulnerability in binary-husky/gpt_academic version 310122f allows for a Regular Expression... Moderate Unreviewed

CVE-2024-12388 was published Mar 20, 2025

A vulnerability in danswer-ai/danswer version 1 allows an attacker to perform a Regular... High Unreviewed

CVE-2024-7779 was published Mar 20, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the latest version of... High Unreviewed

CVE-2024-6038 was published Jun 27, 2024

A Regular Expression Denial of Service (ReDoS) vulnerability exists in gaizhenbiao/chuanhuchatgpt... Moderate Unreviewed

CVE-2024-10955 was published Mar 20, 2025

A vulnerability classified as problematic has been found in vercel hyper up to 3.4.1. This... Moderate Unreviewed

CVE-2025-7074 was published Jul 5, 2025

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport... High Unreviewed

CVE-2023-0881 was published Mar 31, 2025

A regular expression used by AngularJS' linky https://docs.angularjs.org/api/ngSanitize/filter... Moderate Unreviewed

CVE-2025-4690 was published Aug 19, 2025

IBM Concert Software 1.0.0 through 1.1.0 could allow a remote attacker to cause a denial of... High Unreviewed

CVE-2025-33090 was published Aug 18, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 13.2 before 18.0.6, 18.1... Moderate Unreviewed

CVE-2025-2937 was published Aug 13, 2025

A vulnerability was found in Metabase 54.10. It has been classified as problematic. This affects... Moderate Unreviewed

CVE-2025-5895 was published Jun 9, 2025

Previous1…4 Next

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

92 advisories